b'SEC.gov |  Semiannual Report to Congress: October 1, 2002 to March 31, 2003\nSearch SEC Documents\nCompany Filings | More Search Options\nSkip to Main Content\nAbout\nWhat We Do\nCommissioners\nSecurities Laws\nSEC Docket\nReports\nCareers\nContact\nDivisions\nCorporation Finance\nEnforcement\nInvestment Management\nEconomic and Risk Analysis\nTrading and Markets\nNational Exam Program\nAll Divisions and Offices\nEnforcement\nLitigation Releases\nAdministrative Proceedings\nOpinions and Adjudicatory Orders\nAccounting and Auditing\nTrading Suspensions\nHow Investigations Work\nAdministrative Law Judges\nRegulation\nProposed Rules\nFinal Rules\nInterim Final Temporary Rules\nOther Orders and Notices\nSelf-Regulatory Organizations\nStaff Interpretations\nEducation\nInvestor.gov\nCheck Out a Broker or Adviser\nInvestor Alerts and Bulletins\nFast Answers\nFile a Tip or Complaint\nPublications\nFilings\nEDGAR Search Tools\nCompany Filings Search\nHow to Search EDGAR\nRequesting Public Documents\nDescriptions of Filing Types\nInformation for Filers\nAbout EDGAR\nNews\nPress Releases\nPublic Statements\nSpeeches\nTestimony\nSpotlight Topics\nWhat\'s New\nNews Digest\nEvents\nWebcasts\nSpecial Studies\nSemiannual Report to Congress: October 1, 2002 to March 31, 2003\nInspector General\nAbout OIG Office of Audits Office of Investigations Semiannual Reports Testimony Other Publications References Links Relevant FOIA Documents Contact Us\nThis document is an HTML formatted version of a printed document.\nThe printed document may contain agency comments, charts, photographs,\nappendices, footnotes and page numbers which may not be reproduced in this\nelectronic version.  If you require a printed version of this document\ncontact the United States Securities and Exchange Commission, Office of\nInspector General, Mail Stop 11-7, 450 Fifth Street N.W., Washington, D.C.\n20549 or call (202) 942-4460.\nSecurities and Exchange Commission\nOffice of Inspector General\nSemiannual Report to Congress\nOctober 1, 2002 to March 31, 2003\nDuring the first half of fiscal year 2003, the Office of Inspector General assisted the Commission to:\nAssure the effectiveness of preparedness plans and operations for dealing with market operational contingencies,\nEnsure the accountability of taxpayer dollars by enhancing financial management internal control,\nStrengthen the process for selecting members for the Public Company Accounting Oversight Board,\nEnhance the effectiveness of the primary full disclosure system in supporting staff disclosure reviews,\nImprove the effectiveness of its enforcement of Internet securities frauds and deterrence of recidivists,\nProtect its computers and data from security threats and comply with the Government Information Security Reform Act,\nAssess the effectiveness of its bankruptcy program and strengthen the oversight of SRO fee applications,\nEnhance the integrity of the Commission and its staff by investigating allegations of misconduct,\nImprove the personnel guidance it provides to its staff, and\nAssure the effectiveness of regional/district office administrative practices.\nExecutive Summary\nDuring this period (October 1, 2002 to March 31, 2003), the Office of Inspector General (Office) issued eight audit reports and three audit memoranda. These evaluations focused on EDGAR utility to Commission staff; the Enforcement Internet Program; the Bankruptcy Program; purchase cards; market contingency preparedness; deterring securities recidivism; financial management system controls; administrative controls in the Philadelphia District Office; security of external databases; NRSI password management; and personnel guidance.  The Office also provided technical assistance and support to the General Accounting Office in its review of the Public Company Accounting Oversight Board selection process.\nThirteen investigations were closed during the period.  Nine subjects were referred to the Commission.  One subject resigned; another was suspended.  One subject received a written reprimand, and another an oral reprimand.  In addition, two subjects referred during a prior period resigned, three were suspended, one received alternative discipline, and one received a written reprimand.  Five subjects referred during the period are awaiting disposition.\nInformation resources management (IRM) has been previously reported as a significant problem.  During this period, the Commission continued to improve its management of these resources.  Nonetheless, we intend to maintain our audit focus in this important area.\nWe are reporting an additional significant problem for the first time.  An audit completed this period found that Commission financial management controls for fiscal year 2002 were effective in all material respects except for controls over property accountability, accounting and control of disgorgements, information system and security program controls, and the Disgorgement and Penalties Tracking System.  Management has established several high-level task forces to correct these weaknesses.  We commend the Commission for initiating prompt corrective actions to strengthen the financial management controls.\nNo management decisions were revised during the period.  The Office of Inspector General agrees with all significant management decisions regarding audit recommendations.\nAudit Program\nThe Office issued eight audit reports and three audit memoranda during the reporting period.  These documents contained a total of 50 recommendations, which are further summarized below.  Management generally concurred with the recommendations, and in some cases took corrective actions during the audits.\nThe Office also provided technical assistance and support to the General Accounting Office in its review of the Public Company Accounting Oversight Board selection process.\nEDGAR UTILITY TO COMMISSION STAFF (AUDIT 351)\nThe Commission\'s Electronic Data Gathering, Analysis and Retrieval (EDGAR) system receives, stores and distributes electronic filings submitted to the Commission in accordance with securities laws and rules.  Because the EDGAR system is the Commission\'s primary source of corporate filings, it is a critical part of the Full Disclosure program.\nWe evaluated the utility of the EDGAR system to Commission staff. We surveyed and interviewed Commission staff and reviewed relevant documentation.\nStaff responding to our survey generally rated EDGAR as useful or very useful, as the system allows them to electronically search, retrieve, assign and store electronic filings.  As an analytical tool, however, EDGAR has limited value to the staff.\nWe found that the EDGAR system cannot extract financial statement information to automate the selection of filings for review, identify financially troubled companies or analyze financial statement information during reviews.  Moreover, it cannot compare original and amended filings to show changes resulting from filing review comments.  We also found that during the recent EDGAR modernization, the Commission did not consistently follow IT capital investment acquisition best practices.\nWe recommended that EDGAR\'s financial analysis capability be enhanced.  In addition, future EDGAR projects should follow best practices (\ne.g.\n, business process analyses, review by the Information Technology Capital Planning Committee, use of performance-based contracting techniques).  We also recommended correction of data inconsistencies between EDGAR and a predecessor system (the Entity Filings and Fee System or EFFS).\nENFORCEMENT INTERNET PROGRAM (AUDIT 352)\nThe Internet Enforcement Program (IEP) consists of the Office of Internet Enforcement (OIE) in the Division of Enforcement (Enforcement) and Internet Branches in most field offices and Enforcement.  The branches pursue Internet-related cases, as well as traditional cases.\nOIE has six major responsibilities related to securities fraud on the Internet:\nIdentifying surveillance areas,\nFormulating investigative procedures,\nProviding strategic and legal guidance to Enforcement staff nationwide,\nConducting Internet investigations and prosecutions,\nTraining Commission staff and outside agencies, and\nServing as a resource on Internet matters for the entire Commission.\nThe number of Internet-related cases has generally increased since fiscal year 1995.\nWe evaluated the effectiveness and efficiency of the IEP\'s analysis of Internet-related intelligence, and its deterrence and educational efforts.  During the audit, we interviewed staff from the Commission, the National Association of Securities Dealers, and the Federal Trade Commission.  We also reviewed relevant documentation and performed other procedures.\nWe found that the EIP is generally functioning effectively and efficiently.  However, we made several recommendations to improve the program.  These include enhancing communication regarding the quality of referrals, opening preliminary investigations timely, and improving the consistency of Litigation Releases.\nBANKRUPTCY PROGRAM (AUDIT 355)\nChapter 11 of the US Bankruptcy Code grants the Commission authority to participate in bankruptcy proceedings.  Generally, the Commission\'s role in a bankruptcy consists of participating in legal issues that affect public investors, reviewing the disclosure documents to determine if the company is disclosing to investors and creditors the information they need to know to make informed decisions, and ensuring that stockholders are represented by an official committee, if appropriate.\nStaff from the Midwest, Northeast, and Pacific Regional Offices and the Atlanta District Office implement the bankruptcy program.  The Office of the General Counsel\'s (OGC) Appellate Litigation and Bankruptcy Group supervise their work.\nWe reviewed the bankruptcy program to determine the status of previous audit recommendations and identify possible improvements to the program. During the audit, we interviewed Commission staff, U.S. Trustees, bankruptcy attorneys, and staff at the Securities Investor Protection Corporation.  We also reviewed available documentation.\nWe found that the bankruptcy program was effective overall.  The Commission implemented several of the recommendations from a prior OIG audit in 1995.  However, certain issues discussed in the prior report remain today.  These include the program staff\'s desire to obtain increased delegated authority and additional financial analysts or accountants to review financial statements.  The program staff feel these steps would enhance the program\'s effectiveness.  The Office of General Counsel (OGC) continues to explore these issues.\nProgram staff recently began monitoring Securities Investor Program Corporation (SIPC) cases.  We recommended that senior program officials issue guidance to program staff regarding their role in reviewing fee applications.  We also recommended that the Division of Market Regulation request that SIPC require the attorneys and trustees hired during these proceedings to submit more detailed and timely fee applications.\nTo enhance communication among Commission staff, we also recommended that OGC staff resume quarterly meetings with other Commission offices and divisions to discuss SIPC issues.\nPURCHASE CARDS (AUDIT 357)\nUnder a General Services Administration (GSA) contract with the Mellon Bank, Commission employees selected by their supervisor are authorized to make small purchases (in most cases, up to $2500) with a government purchase card issued to them.  The Office of Administrative and Personnel Management has issued regulations for the Commission\'s purchase card program (SECR 10-6).\nThis audit followed-up on a prior OIG review (OIG 258, issued September 30, 1997), and also responded to recent reports of abuse of purchase card privileges at other agencies.  Our objectives were to determine whether program management was efficient and effective, and controls were functioning as intended.\nDuring the audit, we reviewed controls related to program management, spending limits, and supervisory review.  We scanned purchase card transactions processed between January and June 2002, using Merchant Category codes to attempt to identify any apparent misuse of the cards.  We also interviewed selected cardholders and approving officials, as well as staff from the Office of Administrative and Personnel Management  (OAPM) and the Office of Financial Management.\nWe found that the Commission\'s purchase card program was generally efficient and effective, and management controls were functioning as intended.  Also, we did not identify any instances of apparent misuse of the cards (e.g., unauthorized and potentially fraudulent purchases of items such as jewelry or clothing).\nWe recommended that OAPM assign program management a higher priority.  Our other recommendations included providing additional small purchase training; requiring cardholders placing multiple orders to obtain quotations from more than one supplier; canceling inactive cards; correcting the billing address of cardholders as appropriate; requiring cardholders to notify the property officer when accepting delivery of accountable property; and considering establishing bulk commitments for micro purchases.\nMARKET CONTINGENCY PREPAREDNESS (AUDIT 359)\nWe evaluated the Commission\'s preparations for responding to contingencies that could affect the markets such as natural or man-made disasters, operational difficulties and market volatility.  The scope of the review included the Division of Market Regulation\'s (Division) response to the events of September 11, 2001, and the Division\'s Automation Review Program (ARP) for Self-Regulatory Organizations (SROs) and other inspected entities.\n1\nDuring the audit, we reviewed available documentation and observed operations and communications in the Commission\'s MarketWatch room.  We also interviewed Commission staff and officials at selected SROs, Electronic Communications Networks (ECNs), clearing corporations and other inspected entities.\nWe found that since September 11, 2001, the Commission has taken several steps to enhance its capabilities for responding to contingencies, and further enhancements were planned.  The ARP program has also made several meaningful recommendations, to better ensure that inspected entities were prepared to respond to various contingencies.  Although progress was being made, inspected entities have not implemented all ARP recommendations relating to contingency preparedness.\nWe recommended that MR consider sending ARP staff to the entities that ARP inspects to observe and become more familiar with their operations.  We also recommended that MR explore ways to ensure requested information from the entities that ARP oversees is forthcoming.\nDETERRING SECURITIES RECIDIVISM (AUDIT 360)\nWe reviewed the effectiveness of Enforcement\'s existing procedures to deter recidivism.  We also examined whether "best practices" from other federal agencies would be feasible at the Commission.\nDuring the audit, we interviewed staff from the Commission, the National Association of Securities Dealers, and the following federal agencies:\nthe\nDepartment of Justice, Environmental Protection Agency, Commodities Futures Trading Commission, Federal Trade Commission, Federal Communications Commission, and the Equal Employment Opportunity Commission.  We also reviewed recent Enforcement actions and supporting documentation, among other procedures.\nWe found that while the Commission does not have a formal recidivism program, it uses some procedures that might deter recidivism.  Based on our audit work, we identified some methods and concepts that Enforcement management could potentially implement to further deter recidivism, which would enhance investor protection.\nWe discussed our observations with senior Enforcement management.  They are considering whether any of the procedures would be practical to implement.\nFINANCIAL MANAGEMENT SYSTEMS CONTROLS (AUDIT 362)\nAn OIG contractor reviewed the Commission\'s financial management systems controls, based on criteria in the Federal Managers Financial Integrity Act (FMFIA). The contractor found that the controls for fiscal year 2002 were effective in all material respects under the FMFIA criteria, except for three material weaknesses and one material non-conformance.\nThe exceptions concerned property accountability, accounting and control of disgorgements, information system and security program controls, and the Disgorgement and Penalties Tracking System.  We believe that, taken together, these financial management exceptions are a "significant problem" for the Commission.\nManagement concurred with our recommendations to strengthen these financial controls, and has established several high-level task forces to correct them.  We commend management for promptly initiating corrective actions to strengthen the controls.  The General Accounting Office will review the corrective actions as part of its future audit of the Commission\'s financial statements.\nPHILADELPHIA DISTRICT OFFICE (AUDIT 366)\nThe Philadelphia District Office (PDO) assists the Northeast Regional Office in administering Commission programs.  In carrying out its responsibilities, the PDO exercises a broad range of financial and administrative functions, including maintaining time and attendance records; procuring supplies and services; arranging for staff travel; maintaining an inventory of property; and recording budgeted and actual expenditures of the office.\nWe conducted a limited audit of the financial and administrative controls of the PDO.  The audit procedures were limited to interviewing PDO staff, reviewing supporting documentation, and conducting limited tests of transactions.  The purpose of the audit was to provide the Commission with negative assurance that the internal controls were adequate, implemented economically and efficiently, and in compliance with Commission policies and procedures.\n2\nDuring our limited audit, we identified one material issue.  We recommended that the PDO issue an enhanced emergency plan.  In addition, we recommended that the Office of Administrative and Personnel Management provide updated guidance on emergency plans to field offices.\nOtherwise, our limited review indicated that the PDO\'s controls were generally adequate, implemented economically and efficiently, and in compliance with Commission policies and procedures.  We discussed some non-material findings and informal recommendations with PDO\'s management.\nSECURITY OF EXTERNAL DATABASES (AUDIT MEMORANDUM 25)\nBased on information provided by the Commission\'s Library, we learned that the Dow Jones Interactive account of a former Commission employee had incurred extensive charges.  The account had not been cancelled timely when the employee left the agency.  Subsequently, we identified four former employees with active Lexis/Nexis accounts (Lexis/Nexis, like Dow Jones, is an external database used by many Commission employees).\nThe Office of Information Technology issued updated Operating Procedures for Lexis/Nexis that should help address this problem.  In addition, the Library developed a proposal to further improve password management for external databases such as Lexis/Nexis.  The proposal includes training of users, and development of policies and procedures for password management.  To implement the proposal, additional staff will be required, according to the Library.\nWe recommended that the Office of Information Technology inform administrative contacts (who will be responsible for adding and canceling users) about the updated procedures for external database password management.  We also recommended that the Library (under the Office of the Secretary) make a budget request for the staff.\nNRSI PASSWORD MANAGEMENT (AUDIT MEMORANDUM 27)\nWe performed audit work to validate an allegation that Commission staff shared Name Relationship Search Inquiry (NRSI) passwords.  NRSI is a cross-referencing application that provides users the capability to obtain filings information contained in a number of Commission automated information systems.\nWe determined that unauthorized users can gain access to the NRSI system and other Commission systems (such as the Electronic Data Gathering, Analysis, and Retrieval or EDGAR system) because of weak password security controls, and user noncompliance with established access control and security policies.\nWe recommended issuance of written guidance to Commission staff, a mandatory one-time password change for certain NRSI and EDGAR accounts, deletion of NRSI accounts of former employees, and streamlining and automating the processes governing user access to Commission automated systems.\nPERSONNEL GUIDANCE (AUDIT MEMORANDUM 28)\nWe reviewed the status of Commission personnel guidance, and found that many chapters in the guidance (the Personnel Policy and Procedures or POPPS Manual) need updating.  The heavy personnel workload in the last several years (including the implementation of pay parity and the negotiation and implementation of a collective bargaining agreement with the Commission\'s union) has delayed revision of the Manual.\nTo date, current information on several personnel topics has been updated and posted to the Commission\'s Intranet.  In addition, the Collective Bargaining Agreement, in its entirety, is available on the Intranet\n.\nThe Office of Administrative and Personnel Management (OAPM), which is responsible for personnel guidance, plans to develop a comprehensive set of personnel policies for SEC staff that will be user friendly and easily accessible.  This guidance (which will replace the POPPS Manual), will be posted on the Intranet and contain links to relevant outside sites (\ne.g.\n, to the website of the Office of Personnel Management).\nIn the meantime, OAPM plans to continue use of the POPPS Manual supplemented as appropriate by the Collective Bargaining Agreement until the new guidance is developed.  We recommended that OAPM implement its plan to issue updated personnel guidance, and establish timeframes for completion of the guidance.  We also recommended that OAPM inform Commission employees regarding its plans and the personnel guidance they should use.\nPCAOB SELECTION PROCESS (GAO-03-339)\nOn October 31, 2002, at the request of the Commission, the Office of Inspector General initiated a review of the selection process used to select members of the Public Company Accounting Oversight Board (PCAOB), established under the Sarbanes-Oxley Act.  The scope of our review was to assess claims concerning the integrity of the process and to conduct a separate evaluation of the efficiency and effectiveness of the selection process.\nShortly after the initiation of our work, the Congress asked the General Accounting Office (GAO) to review the same selection process.  We met with GAO and discussed the scope and timing of the respective reviews of the PCAOB selection process and possible duplication of effort.  Consistent with the requirement of Section 4(c) of the Inspector General Act (that Inspectors General coordinate and cooperate with GAO to avoid duplication), we agreed to provide technical assistance and other support to GAO\'s review.\nWe provided full cooperation to the GAO effort.  Besides providing GAO with the work product of our review completed to date, we assigned the Office\'s two most senior staff to work with the GAO review team.\nGAO issued its report on December 19, 2002.  It recommended that the Commission define and reach agreement on a documented appointment process, set selection criteria, develop a vetting process and complete necessary reviews before appointments, and make greater use of technology to perform background checks on candidates.  The full report is available at\nWWW.GAO.GOV\n(Report GAO-03-339).  After reviewing the GAO report, we concluded that GAO\'s review was comprehensive and that no further action by our Office was required.\nInvestigative Program\nThirteen investigations were closed during the period.  Nine subjects were referred to the Commission.  During the period, one subject resigned, one subject was suspended, one subject received a written reprimand, and one subject received an oral reprimand.  Two subjects referred during a prior period resigned, three were suspended, one received alternative discipline, and one received a written reprimand.  Five subjects referred during the period are awaiting disposition.  The most significant cases closed during the period are described below.\nTHEFT OF GOVERNMENT PROPERTY\nThe Office investigated allegations that a Commission employee had stolen Commission property on several occasions.  While the Office\'s investigation was pending, the subject resigned, after removal was proposed.  In addition, the subject pled guilty to two criminal misdemeanor counts of theft.  It was also alleged that another Commission employee assisted in the thefts.  This employee resigned, and criminal charges are pending.\nTHREATS\nAn Office investigation developed evidence that a staff member had made threatening remarks to co-workers and had engaged in other harassing, disrespectful, and abusive conduct.  Administrative action is pending.\nCONFLICT OF INTEREST\nThe Office investigated an allegation that a Commission attorney had applied for a position with an entity, while working on a matter pertaining to the entity.  The evidence obtained during the investigation failed to substantiate the allegation.\nTRAVEL CARD ABUSE\nAn Office investigation developed evidence that a Commission employee had misused a Government-issued travel card by obtaining cash advances for personal use.  In addition, the employee often exceeded the cash advance limit and failed to make timely payments on the account.  Administrative action is pending.\nMISUSE OF COMPUTER RESOURCES\nOffice investigations found evidence that three Commission employees had misused Commission computer resources.  Administrative action is pending with respect to all three employees.  In addition, two other Commission employees under investigation for similar offenses resigned to pursue other career opportunities before the investigations were completed.\nSignificant Problems\nFINANCIAL MANAGEMENT SYSTEMS CONTROLS\nA contractor audit of Commission financial management systems controls completed this period (Audit No. 362, described above) found that Commission management controls for fiscal year 2002 were effective in all material respects\n3\nexcept for three material weaknesses and one material non-conformance.  The exceptions concerned property accountability, accounting and control of disgorgements, information system and security program controls, and the Disgorgement and Penalties Tracking System.  We believe that, taken together, these financial management exceptions are a "significant problem" for the Commission.\nManagement concurred with our recommendations to strengthen these financial controls, and has established several high-level task forces to correct them.  GAO will review the corrective actions as part of its future audit of the Commission\'s financial statements.\nWe commend the Commission for its prompt actions to address the identified weaknesses in financial management systems controls.\nSignificant Problems Identified Previously\nINFORMATION RESOURCES MANAGEMENT\nSince April 1996, we have reported information resources management (IRM) as a significant problem based on weaknesses identified in audits, investigations, and management studies.  IRM weaknesses of continuing concern include information systems security; information technology (IT) capital planning; IT investment control and decision-making; administration of IT contracts; and project management.\nAlthough IRM continues to present challenges to Commission managers and staff, significant improvements have been made.  For example, since April 1996, the Office of Information Technology (OIT) has taken corrective action on 139 audit recommendations to improve IRM managerial, operational, and technical processes and controls.\nOver the past six months, under the direction of an Acting Chief Information Officer (CIO), OIT continued making progress to correct material weaknesses identified in many aspects of the Commission\'s management of information resources.  During this reporting period, OIT:\nEstablished an information systems security task force to address systemic information systems security weaknesses;\nFacilitated the operation and activity of the Commission\'s Information Officers Council in selecting and prioritizing Commission IT investments;\nEstablished a Project Review Board, which is comprised of senior OIT managers, to more closely evaluate effective use and allocation of IT resources;\nCompleted a business process review of project management and defined project managers\' roles, responsibilities, and skill sets; and\nDocumented the major project management processes, controls, communication channels, and work products.\nIn addition, OIT acquired additional staff to assist in information resources management policy development and implementation.   OIT issued Commission-wide regulations addressing policy on the use of personal digital assistant (PDA) devices, and development, implementation, and maintenance of the Commission\'s enterprise architecture (EA).  OIT also drafted eight Commission-wide regulations that are pending approval, which address IRM activities such as enterprise backup of electronic data, IRM program management, and project management.\nDuring this period, we issued reports on Commission financial management systems controls (Audit 362) and EDGAR utility to Commission staff (Audit 351).  We also issued audit memoranda addressing security of external databases (No. 25) and password management (No. 27).  Reviews of IT capital decision-making and facility access control systems are ongoing.  In future periods, we intend to maintain our oversight of the Commission\'s management of information resources and its IRM process improvements.\nAccess to Information\nThe Office of Inspector General has received access to all information required to carry out its activities.  No reports to the Chairman, concerning refusal of such information, were made during the period.\nOther Matters\nAUDIT OF COMMISSION FINANCIAL STATEMENTS\nIn response to the Accountability of Tax Dollars Act of 2002, we arranged for an audit of the Commission\'s financial statements.  The U.S. General Accounting Office has agreed to perform the financial audit.  We held joint meetings with GAO and the Office of Financial Management to facilitate the initiation of the audit work.  We plan to reimburse GAO for this audit work.\nWe also briefed Commission senior managers on the results of the audit of Financial Management System Controls (Audit 362, discussed above) and recommended the formation of high-level task forces to address the material weaknesses and non-conformance reported in that audit.  Management responded and immediately established five task forces.  Each task force prepared a project plan, which has been shared with the GAO audit team, and is proceeding to address the financial control weakness assigned to it.\nPEER REVIEW\nThe Executive Council on Integrity and Efficiency assigned the Office of Inspector General of the Board of Governors of the Federal Reserve System (Board OIG) to perform a quality assurance review (peer review) of our audit program during this reporting period.  The Board OIG concluded that our audit operations were generally carried out in conformance with Government Auditing Standards.\nThe Board OIG made several suggestions to enhance our audit program.  We plan to incorporate the suggestions in our Audit Manual and Strategic Plan (currently being updated).\nEXECUTIVE COUNCIL ON INTEGRITY AND EFFICIENCY\nThe Office actively participates in the activities of the Executive Council on Integrity and Efficiency (ECIE).  The Inspector General attends ECIE meetings, is an active member of its Financial Institutions Regulatory Committee, and serves as the ECIE member on the Integrity Committee (established by Executive Order No. 12993).\nThe Counsel to the Inspector General is an active member of the PCIE Council of Counsels.  The Council considers legal issues relevant to the Inspector General community.\nQuestioned Costs\nDOLLAR VALUE\n(IN THOUSANDS)\nNUMBER\nUNSUPPORTEDCOSTS\nQUESTIONEDCOSTS\nA\nFor which no management decision has been made by the commencement of the reporting period\n0\n0\n0\nB\nWhich were issued during the reporting period\n0\n0\n0\nSubtotals (A+B)\n0\n0\n0\nC\nFor which a management decision was made during the reporting period\n0\n0\n0\n(i)\nDollar value of disallowed costs\n0\n0\n0\n(ii)\nDollar value of costs not disallowed\n0\n0\n0\nD\nFor which no management decision has been made by the end of the period\n0\n0\n0\nReports for which no management decision was made within six months of issuance\n0\n0\n0\nRecommendations That Funds Be Put To Better Use\nNUMBER\nDOLLAR VALUE(IN THOUSANDS)\nA\nFor which no management decision has been made by the commencement of the reporting period\n0\n0\nB\nWhich were issued during the reporting period\n0\n0\nSubtotals (A+B)\n0\n0\nC\nFor which a management decision was made during the period\n0\n0\n(i)\nDollar value of recommendations that were agreed to by management\n0\n0\n-\nBased on proposed management action\n0\n0\n-\nBased on proposed legislative action\n0\n0\n(ii)\nDollar value of recommendations that were not agreed to by management\n0\n0\nD\nFor which no management decision has been made by the end of the reporting period\n0\n0\nReports for which no management decision was made within six months of issuance\n0\n0\nReports with No Management Decisions\nManagement decisions have been made on all audit reports issued before the beginning of this reporting period (October 1, 2002).\nRevised Management Decisions\nNo management decisions were revised during the period.\nAgreement with Significant Management Decisions\nThe Office of Inspector General agrees with all significant management decisions regarding audit recommendations.\n1\nWe issued a separate audit memorandum (No. 26) on our review of the Commission\'s Continuity of Operations Plan.\n2\nNegative assurance means that no material internal control weaknesses came to our attention during our limited audit.\n3\nBased on criteria established under the Federal Managers Financial Integrity Act (FMFIA).\nMANAGEMENT RESPONSE OF\nTHE SECURITIES AND EXCHANGE COMMISSION\nACCOMPANYING THE SEMIANNUAL REPORT OF THE INSPECTOR GENERAL\nFOR THE PERIOD OCTOBER 1, 2002 THROUGH MARCH 31, 2003\nIntroduction\nThe Semiannual Report of the Inspector General (IG) of the Securities and Exchange Commission (SEC) was submitted to the Chairman on April 30, 2003 as required by the Inspector General Act of 1978, as amended.  The report has been reviewed by the Managing Executive for Operations, General Counsel, Executive Director, and Director of the Division of Enforcement.  The management response is based on their views and consultation with the Chairman.\nThe management response is divided into four sections to reflect the specific requirements listed in Section 5(b) of the Inspector General Act of 1978, as amended.\nSection I\nComments Keyed to Significant Sections of the IG Report\nA. Audit Program\nDuring the reporting period, the IG issued eight audit reports and three audit memoranda.  Management generally concurred with the findings and recommendations in the IG\'s reports.\nIn addition to audits performed by the agency\'s IG, the General Accounting Office (GAO) actively reviewed program and administrative functions of the SEC.  A complete listing of all GAO audit activity involving the SEC is attached as Appendix A.\nB. Response to Significant Problems\nThe IG\'s Semiannual Report identifies the financial management exceptions reported in both the SEC\'s Federal Manager\'s Financial Integrity Act (FMFIA) certification and a contractor\'s audit of Commission financial management system controls as a new significant problem for the Commission.  Since the FMFIA letter and audit report were issued, several high-level multi-divisional task forces have been working aggressively to remedy the weaknesses.  The task forces have developed work plans that demonstrate both the extent of the challenges and their plans for meeting them.  Action is already underway in many instances.\nC. Response to Significant Problems Previously Identified\nThe IG\'s Semiannual Report continues to identify information resources management as a significant problem.  SEC management is working aggressively to make improvements in this area (see the IG\'s Semiannual Report for a description of actions taken during this period).\nD. IG Recommendations Concerning Use of Funds\nNone.\nE. Reports with No Management Decisions\nManagement decisions have been made on all audits issued prior to the beginning of the reporting period (October 1, 2002).\nF. Revised Management Decisions\nNo management decisions were revised during the reporting period.\nSEC Management Response to\nSemiannual IG Report\nOctober 1, 2002 - March 31, 2003\nSECTION II\nDisallowed Costs\nAs of March 31, 2003\nNumber\nDollar Value(in thousands)\nA.\nFor which final action has not been taken by the commencement of thereporting period\n0\n$0\nB.\nOn which management decisions were made during the reporting period(\nSubtotal A+B)\n0\xc2\xa00\n$0\xc2\xa0$0\nC.\nFor which final action was taken during the reporting\n(i) Recovered by management\n(ii) Disallowed by management\n0\n0\xc2\xa00\n$0\n$0\xc2\xa0$0\nD.\nFor which no final action has\nbeen taken by the end of the\nreporting period\n0\n$0\nSEC Management Response to\nSemiannual IG Report\nOctober 1, 2002 - March 31, 2003\nSECTION III\nFunds Put to Better Use\nAs of March 31, 2003\nNumber\nDollar Value(in thousands)\nA.\nFor which final action has not been taken by the commencement of the reporting period\n0\n$0\nB.\nOn which management decisions were made during the reporting period\n0\n$0\nC.\nFor which final action was taken during the reporting period\n0\n$0\n(i) Dollar value of recommendations that were agreed to by management\n0\n$0\n(ii) Dollar value of recommendations that management has subsequently concluded should/could not be implemented or completed\n0\n$0\nD.\nFor which no final action has been taken by the end of the reporting period\n0\n$0\nSEC Management Response to\nSemiannual IG Report\nOctober 1, 2002 - March 31, 2003\nSECTION IV\nOpen Audit Reports Over One Year Old\nAs of March 31, 2003\nAudit #\nAudit Title\nIssued\nFunds Put to Better Use (in thousands)\nQuestioned Costs(in thousands)\nReason Final Action Not Taken\n130\nManagement of the Data Center\n11/18/89\n$0\n$0\nPolicy development and implementation\nare continuing.  Four policy documents\nwere issued during the reporting period.\nHowever, the process has been slowed by a\nshortage of agency resources.\n143\nInformation Resources Management\n3/27/91\n$0\n$0\nSame as above.\n159\nAudit of Local Area Networks\n2/16/93\n$0\n$0\nThe remaining pending recommendation concerns the implementation of prior audit and contractor\nrecommendations.  Each of the prior recommendations is being addressed under its original report.\n220\nIRM Planning and Execution\n3/26/96\n$0\n$0\nSee explanation for audit #130.\n243\nSECOA Local Area Network\n3/21/97\n$0\n$0\nCertification and accreditation activities are in progress.  Policies and procedures\nare being documented and adopted..\n250\nEnhancing Excellence--Integrity Program\n1/22/97\n$0\n$0\nThe heavy personnel workload in the last several years (including the\nimplementation of pay parity and\nnegotiation and implementation of a\ncollective bargaining agreement with\nthe union) delayed implementation of\nseveral recommendations.  Policies and\nprocedures are now being developed..\n253\nAdministrative Proceedings\n11/7/97\n$0\n$0\nAn adjudicatory conference will be held once there is an experience\nfactor to measure the overall results of the NASD\'s revised disciplinary\nprocedures.\n257\nClient Server\n9/9/97\n$0\n$0\nSee explanation for audit #130.\n269\nDatabase Administration\n1/5/98\n$0\n$0\nSee explanation for audit #130.\n271\nProperty System\n9/25/98\n$0\n$0\nThe remaining property issues will be completed as part of the work done preparing for the SEC\'s 2003 audited financial statements.\n274\nYear 2000-Internal Systems (OIT)\n12/21/99\n$0\n$0\nThe recommendations are being addressed\nunder the original audit report.\n275\nYear 2000-EDGAR\n12/21/99\n$0\n$0\nSee explanation for audit #274.\n282\nYear 2000-Internal Systems (Non-OIT)\n12/21/99\n$0\n$0\nSee explanation for audit #274.\n293\nY2K Status Report--January 1999\n1/25/99\n$0\n$0\nImplementation of the one remaining recommendation is on hold until the new Chief Information Officer is\nhired.\n296\nUNIX Security\n9/14/99\n$0\n$0\nPerformance plans are being reviewed.\nSecurity-related responsibilities are being\nincorporated where appropriate.\n298\nCommission Review of Periodic Reports\n2/23/2000\n$0\n$0\nManagement is attempting to identify review goals that include areas such as\nquality and complexity of reviews in addition to number of reviews.\n299\nData Backup Procedures\n3/31/2000\n$0\n$0\nA contractor has been retained to review security issues.  The contractor\nwill reexamine the pending recommendations in light of the current security\nenvironment.\n308\nEDGAR Hardship Exemptions\n3/30/2000\n$0\n$0\nThe recommendations are being considered\nin connection with the next EDGAR\nmodernization rulemaking initiative.\n309\nTelecommunication Vulnerabilities\n3/31/2000\n$0\n$0\nA revised policy document is expected to be issued in June 2003.\n314\nPayroll Conversion\n9/22/2000\n$0\n$0\nThe DOI payroll system has undergone\nchanges.  SEC staff are consulting with\nDOI to determine whether the remaining\nrecommendation can be implemented in\na meaningful way.\n320\nGeneral Computer Controls\n12/26/2000\n$0\n$0\nSeveral policy documents are in the final\nstages of review/approval.\n327\nGeneral Computer Controls-Regions\n2/28/2001\n$0\n$0\nSee explanation for audit #320.\n329\nGPRA Performance Reports\n3/20/2002\n$0\n$0\nGPRA requires strategic plans to be revised every 3 years.  The next revision\nshould be completed by the fall of 2003.\n330\nReal Property Leasing\n5/31/2001\n$0\n$0\nThe SEC\'s leasing regulation is being\nupdated.  In addition, the agency\'s\nOffice of General Counsel is expected to\nissue an opinion on the applicability of\nthe Public Buildings Act to the SEC in\nJune 2003.\n333\nSensitive Information Follow-up\n3/8/2002\n$0\n$0\nSee explanation for audit #299.\n337\nIT Project Management\n1/24/2002\n$0\n$0\nAn integrated project management\ntracking and control process is\nbeing established.  The targeted\ncompletion date is June 2004.\n346\nCommission Oversight of\tNAFI\n3/7/2002\n$0\n$0\nVarious alternatives are being explored to determine the most efficient approach\nto overseeing and structuring the SEC Recreation and Welfare Association.\nM12\nControl of Computer \tEquipment\n12/29/98\n$0\n$0\nSee explanation for #271.\nM14\nContingency Testing\n3/15/99\n$0\n$0\nSee explanation for audit #130.\nM22\nRural Office Location Policy\n3/28/2002\n$0\n$0\nPolicy and procedures are being documented.\nG317\nUse of Personal Resources\n12/14/2000\n$0\n$0\nSee explanation for audit #130.\nG335\nPublic Transportation Subsidy Program\n9/27/2001\n$0\n$0\nThe Public Transportation Subsidy\tRegulation is being revised.  The\nregulation will be issued in conjunction\nwith other administrative regulations\nthat are subject to the labor-management\ncontract.\nAPPENDIX A\nGeneral Accounting Office Audit Activity\nInvolving the Securities and Exchange Commission\nReports Issued During the Reporting Period\n1.\nFinancial Statement Restatements:  Trends, Market Impacts, Regulatory Responses, and Remaining Challenges\n, GAO-03-138 (October 2002)\n2.\nBuilding Security:  Security Responsibilities for Federally Owned and Leased Facilitie\ns, GAO-03-8 (October 2002)\n3.\nSecurities and Exchange Commission:  Actions Needed to Improve Public Company Accounting Oversight Board Process\n, GAO-03-339 (December 2002)\n4.\nCritical Infrastructure Protection:  Efforts of the Financial Services Sector to Address Cyber Threats\n, GAO-03-173 (January 2003)\n5.\nPotential Terrorist Attacks:  Additional Actions Needed to Better Prepare Critical Financial Market Participants\n, GAO-03-251 (February 2003)\n6.\nInvestment Banks:  The Role of Firms and Their Analysts with Enron and Global Crossing, GAO-03-511 (March 2003)\nAudits in Progress as of March 30, 2003\n1.\nNasdaq and NYSE Listing Programs\n(250075).  A review of Nasdaq and NYSE listing programs and the SEC\'s oversight of these programs.\n2.\nSection 10(a) Reporting Update\n(194142).  A study to update GAO\'s February 2000 report,\nSecurities Exchange Act:  Review of Reporting Under Section 10A"\n(AIMD-00-54R).\n3.\nEmployment Discrimination Arbitration\n(130174).  A review of employment and discrimination arbitration cases at the NYSE and NASD.\n4.\nReference Rates for Defined Benefit Pension Plans\n(130140).  A study of the reference rate that single-employer defined benefit pension plans must use, by law, to limit or set discount rates in ERISA minimum and full funding, lump sum, and PBGC variable rate premium calculations.\n5.\nElectricity Market\n(360242).  A study of information on electricity currently collected by federal agencies, the ways in which this information is shared among federal agencies and with the public, the ways in which this information is used in formulating and evaluating public policy, and additional information that might be needed to provide oversight of the electricity market.\n6.\nFollow-up on Fines\n(250092).  A study to evaluate the steps SEC has taken to implement GAO\'s recommendations in the report entitled,\nSecurities and Exchange Commission and Commodity Futures Trading Commission:  Most Fines Collected, but Improvements Needed in the Use of Treasury\'s Collection Service\n(GAO-01-900).\n7.\nTying Practices at Large Banks\n(250099).  A review of the potential for large banks with investment bank affiliates (commercial banks) to engage tying activities in violation of Section 106 of the Bank Holding Company Act and/or violate Section 23B of the Federal Reserve Act.\n8.\nFarmer Mac Oversight\n(250095).  A review to obtain information on the financial stability of Farmer Mac; its corporate governance; its compensation policy, including the granting of stock options; the non-voting status of its class C stock; and its fulfillment of its congressionally established mission.\n9.\nConsolidation of Public Accounting Firms\n(250104).  A study of the factors that have led to the consolidation of public accounting firms since 1989; the present and future impact of reduced competition on capital formation and securities markets; problems, if any, faced by companies due to reduced competition; and the extent to which federal and state regulations impede competition.\n10.\nRotation of Registered Public Accounting Firms\n(194182).  A study of the potential effects of requiring the mandatory rotation of registered public accounting firms.\n11.\nExpected Rates of Return\n(130217).  A study of the expected rates of returns for private sector defined benefit pension plans.\n12.\nNational Money Laundering Strategy\n(250117).  A study focusing on the regulatory aspects of the 2002 National Money Laundering Strategy, specifically, the coordination among financial regulatory agencies and law enforcement institutions.\n13.\nMutual Fund Fees\n(250128).  A review to follow-up on GAO\'s June 2000 report entitled,\nMutual Fund Fees:  Additional Disclosure Could Encourage Price Competition\n(GGD-00-126).\n14.\nEnvironmental Disclosures\n(360299).  A review regarding disclosure of environmental information under the securities regulations.\n15.\nFollow-up on SIPC\n(250105).  A review to assess the steps SEC and SIPC have taken to implement GAO\'s recommendations in the report,\nSecurities Investor Protection:  Steps Needed to Better Disclose SIPC Policies to Investors\n(GAO-01-653), and to obtain information on excess SIPC insurance coverage of broker-dealers.\n16.\nSecuritization\n(250103).  A review regarding the securitization of economic development loans and the development of secondary markets for these securities.\n17.\nInsurance Marketplace\n(250112).  A study of the issues and problems that senior citizens are facing in the insurance marketplace as they try to manage their retirement assets and income.  Of particular concern are the regulatory challenges created as financial institutions introduce new "hybrid" types of products into the marketplace that cross industry lines (\ne.g.\n, products with insurance and securities features to them).\n18.\nBusiness-Owned Life Insurance\n(250121).  A review of life insurance purchased and owned by businesses, banks, or trusts.  Specifically, a review of the uses of such policies, reporting requirements, and oversight, as well as alternative means of obtaining such policies\' benefits.\n19.\nEnterprise Architectures\n(310248).  A government-wide review of agencies\' progress with implementing enterprise architectures.\nSite Map\nAccessibility\nContracts\nPrivacy\nInspector General\nAgency Financial Report\nBudget & Performance\nCareers\nContact\nFOIA\nNo FEAR Act & EEO Data\nWhistleblower Protection\nOpen Government\nPlain Writing\nLinks\nInvestor.gov\nUSA.gov\nU.S. Securities and Exchange Commission\nABOUT\nDIVISIONS\nENFORCEMENT\nREGULATION\nEDUCATION\nFILINGS\nNEWSROOM\nInspector General\nAbout OIG\nOffice of Audits\nOffice of Investigations\nSemiannual Reports\nTestimony\nOther Publications\nReferences Links\nRelevant FOIA Documents\nContact Us'